Subodh KCSubodh KC/systems
let's talk →
Compliance Guides

AI Compliance
Laws Guide

Three AI laws are reshaping how companies build and deploy AI. Here's what each one requires — and which ones apply to you.

At a Glance

Cross-Law Comparison

Quick reference comparing the three major AI compliance regulations. Use this to determine which laws apply to your organization.

FeatureEU AI ActNYC LL144Texas TRAIGA
Effective DateAug 2, 2026 (full)Jul 5, 2023Jan 1, 2026
ScopeAll AI on EU marketAI in NYC hiringAll AI systems in Texas
Risk ApproachTiered (4 levels)Single category (AEDTs)Prohibited practices list
Key ProhibitionsSocial scoring, biometric ID, manipulationUsing AEDT without bias auditManipulation, social scoring (gov), discrimination, deepfakes
Max Penalty€35M or 7% revenue$1,500/day$200,000/violation
EnforcementNational AI authorities + EU AI OfficeNYC DCWPTexas Attorney General
Cure PeriodNoNoYes — 60 days
NIST AI RMFNot requiredNot requiredDefense pathway
Disclosure DutyTransparency for limited-risk AICandidate notice 10 days beforeGov/healthcare AI disclosure
SandboxYes (Art. 57)NoYes (Ch. 553, 36 months)
Private Right of ActionNoNoNo
Decision Framework

Which AI Laws Apply to You?

A quick decision framework to determine which regulations may apply to your organization.

EU AI Act

You place AI systems on the EU market, or your AI output is used in the EU — regardless of where your company is headquartered.

NYC Local Law 144

You use an automated employment decision tool (AEDT) for hiring or promotion decisions for positions located in New York City.

Texas TRAIGA

You develop, deploy, or offer AI systems with a Texas nexus — you conduct business in TX, produce products used by TX residents, or develop/deploy AI in TX.

Multiple laws can apply simultaneously. A company using AI for hiring in NYC while also serving EU customers and operating in Texas could be subject to all three regulations. Each law has independent applicability criteria.

Why Trust These Guides

Built on Real Compliance Engineering

These guides are informed by the HAIEC compliance platform and Zenodo-published research — not just legal analysis.

HAIEC TRAIGA Engine

Subodh KC co-founded HAIEC and built the TRAIGA compliance engine — a 9-section deterministic assessment wizard covering Chapters 551-554 of the Texas Business and Commerce Code.

ISAF Framework

The Instruction Stack Audit Framework, published in Zenodo, maps to EU AI Act Article 9 requirements across nine abstraction layers — providing practical implementation guidance.

Deterministic Bias Detection

Zenodo-published research on deterministic bias detection for NYC LL144 addresses the reproducibility requirements that auditors need for defensible audit evidence.

Not Sure Which Laws Apply to You?

Get a comprehensive AI compliance applicability assessment from Subodh KC. Identify which regulations apply to your organization, what your obligations are, and build a compliance roadmap.

These guides are for informational purposes and do not constitute legal advice. For jurisdiction-specific compliance guidance, contact Subodh KC for advisory services. Last updated: July 2026.

Let's Talk →